[Dnsmasq-discuss] Insecure function use

Cristian Rodríguez crrodriguez at opensuse.org
Fri Aug 30 16:31:25 BST 2013


El 30/08/13 05:52, microcai escribió:
> 2013/8/30 Rosen Penev <rosenp at gmail.com>:
>> I did a git grep for strcat, strcpy, and sprintf and found numerous entries
>> in the codebase. Is there a specific reason for their use?
> 
> Who told you strcat/strcpy/sprintf is not secure ?
> This is absolutely non-sense.
> 
> I guess Visual C++ told you that. Visual C++ will tell you that a lot
> of  standard C library is "deprecated", while in fact, NO.
> 
> As a programmer , try not to be fooled by commercial product.

Also nowadays other compilers such as GCC will do optimizations over
strcpy, strcat usage such as those mentioned here -->
http://gcc.gnu.org/gcc-4.7/changes.html and add buffer overflow checking.






More information about the Dnsmasq-discuss mailing list